Cisco Community
English
Register
Community will be in Read-only Mode from April 11 at 11:00 PM PT to Monday April 12 at 9:00 PM PT - READ DETAILS HERE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Join Customer Connection to register!
870
Views
0
Helpful
3
Replies
J_Vansen_S
Participant
Participant
‎06-05-2012 09:14 PM
‎06-05-2012 09:14 PM

Cisco ASA dual ISP with different services

Hi All,

I have been assigned a task to deploy an additional ASA firewall to a existing customer network.

Current infra

  • 1x Cisco ASA that is used for internet traffic and MS_Exchange Mail traffic

Proposed new infra

  1. Additional Cisco ASA
  2. Used for Remote access vpn (Anyconnect)
  3. DMZ access

Concerns

  1. All of internal users/VLAN will be going to the internet via ISP 1 (default route to ISP1).  My web&app services is hosted on ISP2.
    • Would like be an issue?
  2. A few of the internal users within the same VLAN/subnet would like to use the ISP2. Is that possible?

Please advise

Labels:
0 Helpful
3 REPLIES 3
Tagir Temirgaliyev
Frequent Contributor
Frequent Contributor
‎06-06-2012 03:55 AM
‎06-06-2012 03:55 AM

Hi

A few of the internal users within the same VLAN/subnet would like to use the ISP2. Is that possible?

yes it is.

few of the internal users within the same VLAN/subnet can use the ISP2, they need default route to ASA2

0 Helpful
J_Vansen_S
Participant
Participant
In response to Tagir Temirgaliyev
‎06-06-2012 03:58 AM
‎06-06-2012 03:58 AM

However all users default route is on the L3 Core Switch. How do i achieve this instead?

0 Helpful
Tagir Temirgaliyev
Frequent Contributor
Frequent Contributor
In response to J_Vansen_S
‎06-06-2012 04:04 AM
‎06-06-2012 04:04 AM

There are many ways

1. Another one vlan  for that  few  internal users

2. PBR on core for that  few  internal users

3. put asa2 in the same vlan where users

0 Helpful
Latest Contents
Living on the Edge with the Secure Cats
Created by almuench on 04-07-2021 01:34 PM
0
0
0
0
The cat's out of the bag! In October 2020, Cisco announced the Next Generation of Enterprising Routing Platforms: the Catalyst 8000 Edge Platforms Family including the Catalyst 8200, Catalyst 8300, Catalyst 8500, and Catalyst 8000V. The new family of Cats... view more
Community Live- Smart Licensing Using Policy (Routing) – A S...
Created by Cisco Moderador on 04-06-2021 06:31 AM
0
0
0
0
Community Live- Smart Licensing Using Policy (Routing) – A Simplified Licensing Approach (Live event -  Tuesday, 18 May, 2021 at 9:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris) This event will have place on Tuesday 18th, May 2021 at 9:00 hrs PDT&nb... view more
Networking and Data Center Products Overview (Spring 2021)
Created by Kelli Glass on 03-31-2021 12:46 PM
0
0
0
0
Welcome to the overview guide that covers the latest in Cisco Networking and Data Center innovations and new product introductions. You'll find information on Intent Based Networking updates, special promotions and free trials, as well as exclusive upcom... view more
**New Episode** Cisco Champion Radio: S8|E13 Build Your IT F...
Created by aalesna on 03-30-2021 02:52 PM
0
0
0
0
Listen: https://smarturl.it/CCRS8E13 99% of organizations use certifications to make hiring decisions. The reason is simple: Cisco certifications bring valuable, measurable rewards to certified IT professionals and the organizations that employ them.... view more
Cisco AI Endpoint Analytics - Deployment Guide
Created by kthiruve on 03-29-2021 06:15 PM
0
5
0
5
Cisco AI Endpoint Analytics – Deployment guide This deployment guide is meant for Cisco AI Endpoint Analytics adoption for customers, partners and everyone focusing on Endpoint Visibility and to how achieve it with Endpoint Analytics. It has sections that... view more
Content for Community-Ad